Method and apparatus for controlling traffic between different entities on a network

a technology of network traffic and control apparatus, applied in the field of method and apparatus for controlling traffic between different entities on a network, can solve the problems of complex policy configuration, complex policy configuration, and dealing with packets of data, and achieve the effect of simplifying the task of migrating

Inactive Publication Date: 2006-03-16
3COM
View PDF9 Cites 125 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Benefits of technology

[0055] Thus a logical security zone's network locations may also be updated without modifying actual policy configuration, simplifying the task of m

Problems solved by technology

Hitherto, policy configuration is complex and a policy needs to be modified to support new types of network entities.
In such devices,

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Method and apparatus for controlling traffic between different entities on a network
  • Method and apparatus for controlling traffic between different entities on a network
  • Method and apparatus for controlling traffic between different entities on a network

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0063] We will now describe a preferred embodiment of the invention with reference to FIG. 1.

[0064] As is shown in FIG. 1, a network router 10 controls traffic between various entities, for example for access to internet 11, to a hub 22 which is connected to a first network 12, (which for example may be connected by a dial up modem), a second network 13 (LOCALNET 1) which includes two subnetworks 14, 15, and another network 16 (LOCALNET 2). The whole arrangement shown in FIG. 1 comprises a main network.

[0065] The router 10 is connected via a tunnel 23 in internet 11 to a remote network 24 via a router 25, a hub 26.

[0066] Each network of course will comprise a plurality of devices such as work-stations, personal computers, and connections for laptop computers, printers, and the like.

[0067] The router 10, if it is a router / firewall, includes means to control traffic between the different entities on the network.

[0068] In essence, the various entities (which may not necessarily be...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

A method for controlling traffic between different entities on a network in which packets of received data are inspected, and if encapsulated, are decapsulated layer by layer and, after each layer is decapsulated, the packet is inspected to determine if the packet is to be acted upon or discarded. Apparatus for controlling traffic between different entities on a network in accordance with a predetermined policy, the policy being applied to network traffic being passed between logical zones, wherein each logical zone can be simultaneously associated with one or more types of network entity and in particular t at least one of said source and destination zones includes both physical entities and logical entities,

Description

BACKGROUND TO THE INVENTION [0001] The present invention relates to a method and apparatus for controlling traffic between different entities on a network. [0002] We define “network entity” in this matter as including various types of entity such as; [0003] physical entities comprising IP addresses, ports, devices, remote or local networks or sub networks VLANs, and [0004] logical entities such as tunnels (of various protocols such as IPSec (Internet Protocol Security (IETF)) and GRE (Generic Router Encapsulation) tunnels), internet, items relating to the time of receipt of the packet, or the application (e.g. TCP / UDP IP services such as HTTP, SMTP), or number of bytes in the packet or the rate of receipt of traffic etc. [0005] A router which applies network traffic policy (such as a firewall router) applies a defined network traffic policy between different physical addresses, e.g. different IP addresses of devices on a network. Effectively, it will only allow access between addres...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
IPC IPC(8): H04L12/26H04L29/06
CPCH04L63/104H04L63/0272H04L12/4633H04L69/32H04L2212/00
Inventor BRYSON, HARRY ANDREWDODDS, MALCOLM GRAHAM
Owner 3COM
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap